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In the Claims: 

1 . (presently ariiended) A method of generating RS A cryptographic values, the 
method comprising the steps pf: 

/ obtaining entity specific information (B) about a user; 

obtaining a first secret Iseed value (Wp) and a second secret seed value (Wq); 

obtaining a third, publicly known, randomization value (IV) having a first portion 
(IVp) and a second portion (IvL); 

dividing a potential range of RSA encryption values into a first interval and a second 
interval; i 

generating a first initial f/alue (XXp) based on the first secret seed value (Wp), the 
second secret seed value (Wq) and the first portion of the third randomization value (IVp); 

mapping the first initial value to a entity specific segment of the first interval utilizing 
the obtained entity specific information (B) to provide a mapped first initial value (Xp); 

selecting a first user dependent RSA cryptographic value (p) from the entity specific 
segment of the first interval utilizing the mapped first initial value as a starting point for a 
search for the first user dependent RSA cryptographic value; 

generating a second initial value (XXq) based on the first user dependent RSA 
cryptographic value (p), the second secret seed value (Wq) and the first portion of the third 
randomization value (IVq); \ 

mapping the second initial vajlue to a entity specific segment of the second interval 
utilizing the obtained entity specific information to provide a mapped second initial value 
(Xq);-and \ 

selecting a second user dependent RSA cryptographic value (q) fi-om the entity 
specific segment of the second interval! utilizing the mapped second initial value as a starting 
point for a search for the second user dependent RSA crypto graphic .value ; and 

generating an RSA cryptographic key value for use in encrypting data utilizing the 
first and second user dependent RSA cryptographic values p and q . 




2. (original) A method according to Claim 1, further comprising the step of 
generating auxiliary prime divisors corresponding to the first user dependent RSA 
cryptographic value (p) and the second user dependent RSA cryptographic value (q). 
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3. 



(orijginal) 



A method according to Claim 2, wherein the auxiliary prime 



divisors are generated based upon the first secret seed value (Wp), the second secret seed 
value (Wq) and the third randomization value (IV). 



prime number whose length is at least n bits and is a public generator, and wherein the step 
of generating auxiliary prime divisors comprises the steps of: 

concatenatinglthe first secret seed value (Wp), the second secret seed value (Wq) and 
the third randomization value (IV) so as to provide an exponent value {X)\ 

determining arl initial random value by determining Y=g^(modpo)\ 

selecting initialVprime search values from the initial random value; 

setting the mostlsignificant bit of the initial prime search values to " 1 " to provide final 
prime search values; and 

selecting as the prime divisors the smallest prime value greater than or equal to the 
final prime search values! 

5. (original) \ A method according to Claim 4, further comprising the steps 



selecting at least ont of a new first secret seed value (Wp), a new second secret seed 
value (Wq) and a new third tiandomization value (IV) if the length of at least one of the prime 
divisors is greater than the Iqngth of the final prime search values; and 

re-generating the prirne divisors if the length of at least one of the prime divisors is 
greater than the length of the mnal prime search values. 

6. (original) A method according to Claim 4, wherein the initial prime 
search values have a first length\if a public encryption exponent {e) has an odd value and a 
second length of the public encryption exponent {e) has an even value. 



4. 



(original) 



A method according to Claim 3, wherein /^o is a publicly known 



of: 



7. (original) Aniethod according to Claim 5, wherein the first length is 120 
bits and the second length is 118 Ixits. 
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8. (orrginal) A method according to Claim 1, wherein the entity specific 
segments comprise the segments [A+(B(C-A))/2^, A+((B+l)(C-A))/2^] wherein^ and C are 
th^ndpoints of the respective intervals and the entity specific information comprises b bits. 



9. (original) A method according to Claim 8, wherein the RSA 
cryptographic values comprise n bits and wherein the first interval comprises RSA 

cryptographic values from the set of [V2(2''"^X2''"^ +2''"^^^] and the second interval 
comprises RSA cryptographic values from the set of [ 2^~^ 2^~^^^ ,2^ ]. 

10. (presentw amended) A method according to Claim 9, wherein the binary size 
of the RSA cryptographic values are 2n, a size m is n-b-2 and wherein the step of mapping 
the first initial value coniprises the steps of: 

linearly mapping me first initial value to a entity specific segment of the first interval 
utilizing the obtained entity specific information (B) utilizing the linear mapping fiinction^ 

G, ^ {x) = 4(1 - -^)x + 7^2"-' + 4(1 - -^XB - 1)2"-' ; and 
V2 \ V2 

selecting as the mapped first initial value (Xp) the integer value which is not greater 
than the first initial value (XXp)mapped utilizing the mapping function G\^u; and 

wherein the step of irkpping the second initial value comprises the step of linearly 
mapping the second initial value to a entity specific segment of the second interval utilizing 
the obtained entity specific information (B) utilizing the linear mapping function 

G,,„(x) = 4(l--l.)x + 2"- +ir''' +4(l--l.)(5-l)2'-[[.]]iand 

selecting as the mapped aecond initial value TX r ^") the integer value which is not greater 
than the second initial value (XXUmapped utilizing the mapping function Gtj /. 

1 1 . (original) A method according to Claim 1, wherein the entity specific 
information is biometric information. 



12. 



(original) 



A method according to Claim 1, wherein the entity specific 
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information is a globally unique user identification. 



13. (original 



A method according to Claim 1, further comprising the steps 




determining if a dandidate for p is considered outside the range of RSA cryptographic 
values in the entity specific segment of the first interval; 

selecting at least one of a new first secret seed value (Wp), a new second secret seed 
value (Wq) and a new third randomization value (IV) if a candidate for p is considered 
outside the range of RSA (cryptographic values in the entity specific segment of the first 
interval; 

determining if a caiididate for q is considered outside the range of RSA cryptographic 
values in the entity specifid segment of the second interval; 

selecting at least one of a new first secret seed value (Wp), a new second secret seed 
value (Wq) and a new third randomization value (IV) if a candidate for q is considered 
outside the range of RSA cryptographic values in the entity specific segment of the second 
interval; and 

restarting the cryptogikphic value generation utilizing the first and second secret seed 
values and third randomization value if either a candidate for p is considered outside the 
range of RSA cryptographic values in the entity specific segment of the first interval or if a 
candidate for q is considered outside the range of RSA cryptographic values in the entity 
specific segment of the second interval. 



14. (original) A rAethod according to Claim 1 further comprising the steps of: 
determining if 2^^-l candioates for p have been rejected in selecting the first user 
dependent RSA cryptographic valuV 

selecting at least one of a neW first secret seed value (Wp), a new second secret seed 
value (Wq) and a new third randomization value (IV) if 2*^-1 candidates for p have been 
rejected in selecting the first user dependent RSA cryptographic value; 

determining if 2^*^-1 candidate^ for q have been rejected in selecting the second user 
dependent RSA cryptographic value; 

selecting at least one of a new f^st secret seed value (Wp), a new second secret seed 
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value (Wq) and a new third randomization value (IV) if 2*^-1 candidates for q have been 
rejected in selecting the second user dependent RSA cryptographic value; and 

restarting tne cryptographic generation utilizing the first and second secret seed values 
and third randomization value if either 2^^-l candidates for p have been rejected in selecting 
the first user dependent RSA cryptographic value or if 2^^- 1 candidates for q have been 
rejected in selecting rhe second user dependent RSA cryptographic value. 

15. (originall) A method according to Claim 1, wherein the step of generating 
a first initial value comprises the steps of: 

mixing a concatenation of Wq and IVq utilizing a publicly known mixing function; 
concatenating Wl and IVp; and 

EXCLUSIVE-ORing the mixed concatenation of Wq and IVq and the concatenation 
Wp and rVp to provide the first initial value (XXp); and 

wherein the step off generating a second initial value comprises the steps of: 
EXCLUSIVE ORiAg p and IVp; 

mixing the EXCLUBIVE OR of p and IVp utilizing the publicly known mixing 
function; \ 

concatenating Wq and IVq; and 

EXCLUSIVE-ORindthe mixed EXCLUSIVE OR of p and IVp and the concatenation 
of Wq and IVq to provide the second initial value (XXq). 

16. (original) A method according to Claim 1, further comprising the step of 
authenticating generated candiaate RSA cryptographic values. 

17. (presently amended) A method according to Claim 16, wh e r e in th e step of 
authenticating an RSA cryptographic value comprising compris e s the steps of: 

recovering two candidate prime values utilizing the a^RSA public modulus (N) and 
the a.private signature exponent (d); 

establishing a first of the-two prime values as a first candidate cryptographic value (p') 
and the second of the two prime values as a second candidate cryptographic value (q'); 

recovering first and second candidate seed values Wp' and Wq' fi-om the first and 
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second candiijate cryptographic values p' and q* and from the third publicly known seed value 
IV; 

generating first and second RSA cryptographic values p" and q" utilizing Wp' and Wq' 
and IV; and 

comparijpg p' and p" and q* and q" to authenticate the RSA cryptographic values. 

^ 18. (driginal) A method according to Claim 17, further comprising the step of 

/p^^ determining that me RSA cryptographic values are not authentic if p' and q' are values outside 
^ser defined segments of the first and second intervals. 



19. (original) A method according to Claim 17, w^herein the first of the two 
prime numbers is a smaller of the two prime numbers. 



20. (original) A method according to Claim 17, wherein the step of 
recovering first and second candidate seed values Wp' and Wq* from the first and second 
candidate cryptograplmc values p' and q' and from the third publicly known seed value IV 
comprises the steps of\ 

inverse mappint the second candidate value q' to provide a first initial value Sq; 
EXCLUSIVE ORing the first candidate cryptographic value p* and FVp; 
mixing the EXClLUSIVE OR of the first candidate cryptographic value p' and FVp 
with the publicly known mixing function; 

EXCLUSIVE ORlbg the mixed EXCLUSIVE OR of the first candidate cryptographic 
value p' and FVp with IVq to provide a first known value (Nq) having a length (j); 

determining if a value corresponding to the j least significant bits of Sq is less than the 
first known value Nq; 

EXCLUSIVE ORingUhe n-j most significant bits of the mixed concatenation of the 
first candidate cryptographic value p' and IVp with the n-j most significant bits of Sq if the 
value corresponding to the j Iqast significant bits of the first subsequent value is not less than 
the first known value Nq, to provide the second candidate seed value; 

EXCLUSIVE ORing the n-j most significant bits of the mixed concatenation of the 
first candidate cryptographic valpe p* and IVp with 1 subtracted from the value corresponding 
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to the n-j most significant bits of Sq if the value corresponding to the j least significant bits of 
the first subsequent value is less than the first known value Nq, to provide the second 
candidate seed value; 

inverse mapping the/first candidate value p' to provide a second initial value Sp; 

concatenating the second candidate seed value and IVq; 

mixing the concatepation of the second candidate seed value and IVq with the publicly 
known mixing function; 

EXCLUSIVE ORfing the mixed concatenation of the second candidate seed value and 
rVq with rVp to provide a second known value Np having a length (j); 

determining if a/ value corresponding to the j least significant bits of Sp is less than the 
second known value 

EXCLUSIVE pRing the n-j most significant bits of the mixed concatentation of the 
second candidate seed value and IVq with the n-j most significant bits of Sp if value 
corresponding to the/j least significant bits of the second subsequent value is not less than the 
second known value Np, to provide the first candidate seed value; 

EXCLUSIVE ORing the n-j most significant bits of the mixed concatenation of the 
second candidate seed value and IVq with 1 subtracted firom the value corresponding to the n- 
j most significant /bits of Sp if the value corresponding to the j least significant bits of the 
second subsequent value is less than the second known value Np, to provide the first 
candidate seed value. 



21. (original) A method according to Claim 20, wherein j is 256 bits. 



22. / (presently amended) A system for generating an RSA cryptographic, utilizing 
entity specifii information (B) about a user, a first secret seed value (Wp) and a second secret 
seed value (Wq), and a third, publicly known, randomization value (IV) having a first portion 
(rVp) and a second portion (IVq), comprising: 

means for dividing a potential range of RSA encryption values into a first interval and 
a second inierval; 
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\ 



means for generating a first initial value (XXp) based on the first secret seed value 
(Wp), the second secret seed value (Wq) and the first portion of the third randomization value 
(IVp); 

means for ma )ping the first initial value to a entity specific segment of the first 
interval utilizing the obtained entity specific information (B) to provide a mapped first initial 
value (Xp); 

means for selecting a first user dependent RSA cryptographic value (p) from the 
.1 7 entity specific segment of the first interval utilizing the mapped first initial value as a starting 
point for a search for he first user dependent RSA cryptographic value; 

means for gem crating a second initial value (XXq) based on the first user dependent 
RSA cryptographic value (p), the second secret seed value (Wq) and the first portion of the 
third randomization v£ lue (IVq); 

means for mapj)ing the second initial value to a entity specific segment of the second 
interval utilizing the oqtained entity specific information to provide a mapped second initial 
value (Xq);-^d 

means for selectjjing a second user dependent RSA cryptographic value (q) from the 
f the second interval utilizing the mapped second initial value as a 
starting point for a search for the second user dependent RSA cryptographic value ; and 
means for generating an RSA cryptographic key value for use in encrypting data 
utilizing the first and second user dependent RSA cryptographic values p and q . 



entity specific segment 



23. (original) 1 A system according to Claim 22, fiirther comprising means for 
authenticating generated candidate RSA cryptographic values. 



24. (presently ahiended) A system according to Claim 23 ^ wh e r e in th e m e ans for 
authenticating compris e s a message, comprising : 

means for recovering two candidate prime values utilizing ^ie-a_RSA public modulus 
(n) and the-aprivate signature exponent (d) of the encrypted message; 

means for establishing a first of the-two prime values as a first candidate 
cryptographic value (p') and ^e second of the two prime values as a second candidate 
cryptographic value (q*); 
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means for recovering first and second candidate seed values Wp' and Wq' from the 
first and second candidate cryptographic values p* and q' and from the third publicly known 
seed value IV; \ 

means for generating first and second RSA cryptographic values p" and q" utilizing 
Wp* and Wq* and IV; and 

means for comparing p' and p" and q' and q" to authenticate the message. 



25. (original) A computer program product for generating an RSA 
cryptographic value, utiliz ng entity specific information (B) about a user, a first secret seed 
value (Wp) and a second s(;cret seed value (Wq), and a third, publicly known, randomization 
value (IV) having a first pcfrtion (IVp) and a second portion (IVq), comprising: 

a computer readable storage medium having computer readable program code 
embodied in said medium, said computer readable program code comprising: 

computer readable code which divides a potential range of RSA encryption values 
into a first interval and a second interval; 

computer readable cojde which generates a first initial value (XXp) based on the first 
secret seed value (Wp), the second secret seed value (Wq) and the first portion of the third 
randomization value (IVp); 

computer readable code which maps the first initial value to a entity specific segment 
of the first interval utilizing the obtained entity specific information (B) to provide a mapped 
first initial value (Xp); I 

computer readable code! which selects a first user dependent RSA cryptographic value 
(p) from the entity specific segn^ent of the first interval utilizing the mapped first initial value 
as a starting point for a search fo^ the first user dependent RSA cryptographic value; 

computer readable code v^hich generates a second initial value (XXq) based on the 
first user dependent RSA cryptographic value (p), the second secret seed value (Wq) and the 
first portion of the third randomization value (IVq); 

computer readable code which maps the second initial value to a entity specific 
segment of the second interval utilizing the obtained entity specific information to provide a 
mapped second initial value (Xq); and 

computer readable code which selects a second user dependent RSA cryptographic 
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value (q) from the entiny specific segment of the second interval utilizing the mapped second 



initial value as a startin 
value. 



I point for a search for the second user dependent RSA cryptographic 




26. (origina 
comprising computer re 
cryptographic values. 



A computer program product according to Claim 25, further 
adable code which authenticates generated candidate RSA 



27. (present 



wh e r e in th e comput e r i 



y amended) A computer program product according to Claim 26, 
e adabl e cod e which auth e nticat e s comprises: for authenticating an 



RSA cryptographic valae, comprising 



a computer reac able storage medium having computer readable program code 



embodied in said medium, said computer readable program code comprising: 



candidate cryptographic; 
candidate cryptographic 



and Wq' from the first ar 



computer reada )le code which recovers two candidate prime values utilizing tbe-a 
RSA public modulus (r|) and feea private signature exponent (d) of the encrypted message; 
computer readable code which establishes a first of the two prime values as a first 
value (p') and the second of the two prime values as a second 
value (q*); 

computer readabjle code which recovers first and second candidate seed values Wp' 

d second candidate cryptographic values p* and q' and from the third 
publicly known seed value IV; 

computer readable code which generates first and second RSA cryptographic values 
p" and q" utilizing Wp* ai^d Wq* and IV; and 

computer readably code which compares p' and p*' and q* and q" to authenticate the 
message. 



28. (new) A system according to Claim 22, further comprising means for 
generating auxiliary prime liivisors corresponding to the first user dependent RSA 
cryptographic value (p) andlthe second user dependent RSA cryptographic value (q). 
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29. (new) A 
are generated based upon 
and the third randomization 



system according to Claim 28, wherein the auxiliary prime divisors 
first secret seed value (Wp), the second secret seed value (Wq) 
value (IV). 



tie 




30. (new) A me^ hod according to Claim 29, wherein po is a publicly known prime 
number whose length is at k ast n bits and g is a public generator, and wherein the means for 
generating auxiliary prime divisors comprises: 

means for concatenai ing the first secret seed value (Wp), the second secret seed value 
(Wq) and the third randomization value (IV) so as to provide an exponent value {X)\ 
means for determining an initial random value by determining Y=g^{modpo)\ 
means for selecting initial prime search values from the initial random value; 
means for setting the most significant bit of the initial prime search values to "1" to 
provide final prime search v dues; and 

means for selecting as the prime divisors the smallest prime value greater than or 
equal to the final prime search values. 



. syst(;m 



3 1 . (new) A 
means for selecting at 
secret seed value (Wq) and a 
of the prime divisors is greater 
means for re-generatiqg 
divisors is greater than the le 



according to Claim 30, further comprising: 
least one of a new first secret seed value (Wp), a new second 
ijiew third randomization value (IV) if the length of at least one 
than the length of the final prime search values; and 
the prime divisors if the length of at least one of the prime 
;th of the final prime search values. 



32. (new) A systeih according to Claim 30, wherein the initial prime search 
values have a first length if a public encryption exponent (e) has an odd value and a second 
length of the public encryption lexponent (e) has an even value. 



33. (new) A system! according to Claim 31, wherein the first length is 120 bits 
and the second length is 1 1 8 bits. 
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34. (new) A sysiem according to Claim 22, wherein the entity specific segments 
comprise the segments [A+(B(C-A))/2*', A+((B+l)(C-A))/2^] wherein A and C are the 
endpoints of the respective ir^tervals and the entity specific information comprises b bits. 

35. (new) A methbd according to Claim 34, wherein the RSA cryptographic 
values comprise n bits and wherein the first interval comprises RSA cryptographic values 



1^2" 3 / 2 J ^j^^ second interval comprises RSA 
set of [ 2"-U2"-^^^2"]. 



from the set of [ V2 (2"~^ ), 2^" 
ryptographic values from the 

36. (new) A systeia according to Claim 35, wherein the binary size of the RSA 
cryptographic values are 2«, a size m is n-b-2 and wherein the means for mapping the first 
initial value comprises: 

means for linearly mapbing the first initial value to a entity specific segment of the 
first interval utilizing the obtai led entity specific information (B) utilizing the linear mapping 



V2 2"-* + 4(1 — ]=^){B - 1)2""^ ; and 
V2 



fimction G^^ (x) = 4(1 - — ^)x M 

V 2 

means for selecting as tie mapped first initial value (Xp) the integer value which is 
not greater than the first initial value (XXp)mapped utilizing the mapping function G\,u; and 

wherein the means for mlapping the second initial value comprises means for linearly 
mapping the second initial valuelto a entity specific segment of the second interval utilizing 
the obtained entity specific information (B) utilizing the linear mapping fiinction 



G2 u (^) = 4(1 ^)x + 2""^ + 2"-V' + 4(1 \=){B - 1)2" 

V2 V2 



; and 



means for selecting as the mapped second initial value (Xq) the integer value which is 
not greater than the second initial value (XXq)mapped utilizing the mapping fimction G2,f/- 



37. (new) A system acci)rding to Claim 22, fiirther comprising: 
means for determining if a candidate for p is considered outside the range of RSA 

cryptographic values in the entity speicific segment of the first interval; 

means for selecting at least one of a new first secret seed value (Wp), a new second 

secret seed value (Wq) and a new thira randomization value (IV) if a candidate for p is 



V 
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considered outside the rmge of RSA cryptographic values in the entity specific segment of 
the first interval; 

means for detem lining if a candidate for q is considered outside the range of RSA 
cryptographic values in he entity specific segment of the second interval; 

means for selecting at least one of a new first secret seed value (Wp), a new second 
secret seed value (Wq) and a new third randomization value (IV) if a candidate for q is 
considered outside the range of RSA cryptographic values in the entity specific segment of 
the second interval; and 

means for restartihg the cryptographic value generation utilizing the first and second 
secret seed values and third randomization value if either a candidate for p is considered 
outside the range of RSA cryptographic values in the entity specific segment of the first 
interval or if a candidate for q is considered outside the range of RSA cryptographic values in 
the entity specific segmentiof the second interval. 



38. (new) A system according to Claim 22 further comprising: 

means for determining if 2^^-l candidates for p have been rejected in selecting the 
first user dependent RSA cryptographic value; 

means for selecting at least one of a new first secret seed value (Wp), a new second 
secret seed value (Wq) and a new third randomization value (IV) if 2*^-1 candidates for p 
have been rejected in selecting the first user dependent RSA cryptographic value; 

means for determining p 2^^- 1 candidates for q have been rejected in selecting the 
second user dependent RSA cryptographic value; 

means for selecting at le^st one of a new first secret seed value (Wp), a new second 
secret seed value (Wq) and a new third randomization value (IV) if 2^^-l candidates for q 
have been rejected in selecting tlie second user dependent RSA cryptographic value; and 

means for restarting the cryptographic generation utilizing the first and second secret 
seed values and third randomization value if either 2^^-l candidates for p have been rejected 
in selecting the first user dependent RSA cryptographic value or if 2*^-1 candidates for q have 
been rejected in selecting the second user dependent RSA cryptographic value. 



39. (new) A system according to Claim 22, wherein the means for generating a 
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first initial value comprkes: 

means for mixing a concatenation of Wq and IVq utilizing a publicly known mixing 
function; 

means for concatenating Wp and IVp; and 
means for EXCLTUSIVE-ORing the mixed concatenation of Wq and IVq and the 
concatenation Wp and IVi to provide the first initial value (XXp); and 

wherein the means for generating a second initial value comprises: 
means for EXCLL SIVE ORing p and IVp; 
means for mixing he EXCLUSIVE OR of p and IVp utilizing the publicly known 
mixing function; 

means for concater ating Wq and IVq; and 

means for EXCLUSIVE-ORing the mixed EXCLUSIVE OR of p and IVp and the 
concatenation of Wq and to provide the second initial value (XXq). 

40. (new) A system according to Claim 24, further comprising means for 
determining that the RSA cryptographic values are not authentic if p* and q' are values outside 
the user defined segments of the first and second intervals. 



41 . (new) A system according to Claim 24, wherein the first of the two prime 
numbers is a smaller of the two prime numbers. 



42. (new) A system according to Claim 24 wherein the means for recovering first 
and second candidate seed values Wp' and Wq* from the first and second candidate 
cryptographic values p' and q* pnd from the third publicly knovra seed value IV comprises: 

means for inverse mapj^ing the second candidate value q' to provide a first initial 
value Sq; 

means for EXCLUSIVfl ORing the first candidate cryptographic value p' and IVp; 

means for mixing the EXCLUSIVE OR of the first candidate cryptographic value p' 
and IVp with the publicly known\mixing fimction; 

means for EXCLUSIVE ©Ring the mixed EXCLUSIVE OR of the first candidate 
cryptographic value p* and IVp wim IVq to provide a first known value (Nq) having a length 
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(j); I 

means for determining if a value corresponding to the j least significant bits of Sq is 
less thain the first knowrJ value Nq; 

means for EXCLUSIVE ORing the n-j most significant bits of the mixed 
concatenation of the firstl candidate cryptographic value p* and IVp with the n-j most 
significant bits of Sq if the value corresponding to the j least significant bits of the first 
subsequent value is not idss than the first known value Nq, to provide the second candidate 
seed value; 

means for EXCLltsrVE ORing the n-j most significant bits of the mixed 
concatenation of the first candidate cryptographic value p* and IVp with 1 subtracted from the 
value corresponding to thi n-j most significant bits of Sq if the value corresponding to the j 
least significant bits of the first subsequent value is less than the first known value Nq, to 
provide the second candidate seed value; 

means for inverse mapping the first candidate value p* to provide a second initial 
value Sp; 1 

means for concatenating the second candidate seed value and IVq; 

means for mixing tne concatenation of the second candidate seed value and IVq with 
the publicly known mixing function; 

means for EXCLUSIVE ORing the mixed concatenation of the second candidate seed 
value and IVq with IVp to provide a second known value Np having a length (j); 

means for determining if a value corresponding to the j least significant bits of Sp is 
less than the second known value Np; 

means for EXCLUSIVE ORing the n-j most significant bits of the mixed 
concatentation of the second candidate seed value and IVq with the n-j most significant bits of 
Sp if value corresponding to tne j least significant bits of the second subsequent value is not 
less than the second known value Np, to provide the first candidate seed value; and 

means for EXCLUSIVlE ORing the n-j most significant bits of the mixed 
concatenation of the second c^didate seed value and IVq with 1 subtracted fi-om the value 
corresponding to the n-j most significant bits of Sp if the value corresponding to the j least 
significant bits of the second subsequent value is less than the second known value Np, to 
provide the first candidate seedlvalue. 
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43. (new) A 
comprising computer program 
to the first user dependent RS^^ 
cryptographic value (q). 



computer program product according to Claim 25, further 

ode which generates auxiliary prime divisors corresponding 
cryptographic value (p) and the second user dependent RSA 



44. (new) A comp 
auxiliary prime divisors are 
secret seed value (Wq) and the 



iter program product according to Claim 43, wherein the 
gejnerated based upon the first secret seed value (Wp), the second 
third randomization value (IV). 



45. (new) A comp uter program product according to Claim 44, wherein po is a 



whose length is at least n bits and g is a public generator, and 
code which generates auxiliary prime divisors comprises: 
which concatenates the first secret seed value (Wp), the 

and the third randomization value (IV) so as to provide an 



publicly known prime number 
wherein the computer program 
computer program coc e 
second secret seed value (Wq) 
exponent value {X)\ 

computer program code which determines an initial random value by determining 

computer program cod i which selects initial prime search values firom the initial 
random value; 

computer program cod(; which sets the most significant bit of the initial prime search 

ime search values; and 
computer program codd which selects as the prime divisors the smallest prime value 
greater than or equal to the final prime search values. 



46. (new) A computer program product according to Claim 45, further 
comprising: 

computer program code ^hich selects at least one of a new first secret seed value 
(Wp), a new second secret seed vWlue (Wq) and a new third randomization value (IV) if the 
length of at least one of the prim^ divisors is greater than the length of the final prime search 
values; and 
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computer program code which re-generates the prime divisors if the length of at least 
one of the prime divisors is greater than the length of the final prime search values. 



47. (new) A 
prime search values ha\ 
and a second length of 




computer program product according to Claim 45, wherein the initial 
e a first length if a public encryption exponent {e) has an odd value 
he public encryption exponent {e) has an even value. 



48. (new) A computer program product according to Claim 46, wherein the first 
length is 120 bits and tie second length is 118 bits. 



49. (new) 
specific segments comipnse 
and C are the endpointjs 
comprises b bits. 



50. (new) 
cryptographic values 

cryptographic values 
comprises RS A crypto 



computer program product according to Claim 25, wherein the entity 

the segments [A+(B(C-A))/2^, A+((B+l)(C-A))/2^] wherein^ 
of the respective intervals and the entity specific information 



computer program product according to Claim 49, wherein the RSA 
comprise n bits and wherein the first interval comprises RSA 

fifcm the set of [ 72(2^""^), 2""^ ^2^"^^^] and the second interval 
•aphic values fi-om the set of [ 2 "^"^ + 2 ''"^ ^ ^ ,2 ] . 



5 1 . (new) Al computer program product according to Claim 50, wherein the 
binary size of the RSA cryptographic values are 2/2, a size m is n-b-2 and wherein the 
computer program code ^^hich maps the first initial value comprises: 

computer prograrA code which linearly maps the first initial value to a entity specific 
segment of the first interval utilizing the obtained entity specific information (B) utilizing the 

linear mapping fiincfion Q ^ (x) = 4(1 - -^)jc + V2 2"'^ + 4(1 - -X=){B - 1)2'""* ; and 

V2 V2 

computer program ciode which selects as the mapped first initial value (Xp) the integer 

value which is not greater than the first initial value (XXp)mapped utilizing the mapping 

fiinction G\^u\ and 

wherein the computen program code which maps the second initial value comprises 



In re: Matyas et al. 
Serial No.: 09/357,483 
Filed: July 20, 1999 
Page 20 of 27 



computer program code which linearly maps the second initial value to a entity specific 
segment of the secon^ interval utilizing the obtained entity specific information (B) utilizing 

the linear mapping function G^ ^ix) = 4(1 — -h 2""' + 2""'^' + 4(1 - -^)(5 - 1)2'""' ; and 

V2 v2 

computer pro-am code which selects as the mapped second initial value (Xq) the 



integer value which is 
mapping function G2 



not greater than the second initial value (XXq)mapped utilizing the 



A computer program product according to Claim 25, fiarther 



52. (new) 
comprising: 

computer program code which determines if a candidate for p is considered outside 
the range of RSA cryptographic values in the entity specific segment of the first interval; 

computer proj^ram code which selects at least one of a new first secret seed value 
(Wp), a new second sescret seed value (Wq) and a new third randomization value (IV) if a 

lidered outside the range of RSA cryptographic values in the entity 
specific segment of the first interval; 

computer program code which determines if a candidate for q is considered outside 
the range of RSA cryptographic values in the entity specific segment of the second interval; 

computer progr^ code which selects at least one of a new first secret seed value 
(Wp), a new second secret seed value (Wq) and a new third randomization value (IV) if a 
candidate for q is considered outside the range of RSA cryptographic values in the entity 
specific segment of the second interval; and 

computer program code which restarts the cryptographic value generation utilizing the 
first and second secret seed values and third randomization value if either a candidate for p is 
considered outside the range of RSA cryptographic values in the entity specific segment of 
the first interval or if a candidate for q is considered outside the range of RSA cryptographic 
values in the entity specific segment of the second interval. 



53. (new) A computer program product according to Claim 25 further 
comprising: \ 

computer program code which determines if 2^^-l candidates for p have been rejected 
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in selecting the first user dependent RSA cryptographic value; 

computer prog -am code which selects at least one of a new first secret seed value 
(Wp), a new second se :ret seed value (Wq) and a new third randomization value (IV) if 2^^-l 
candidates for p have been rejected in selecting the first user dependent RSA cryptographic 
value; 

computer progi am code which determines if 2^^-l candidates for q have been rejected 
in selecting the second user dependent RSA cryptographic value; 

computer progi am code which selects at least one of a new first secret seed value 
(Wp), a new second secret seed value (Wq) and a new third randomization value (IV) if 2*^-1 
candidates for q have been rejected in selecting the second user dependent RSA 
cryptographic value; aid 

computer progi am code which restarts the cryptographic generation utilizing the first 
values and third randomization value if either 2*^-1 candidates for p 



and second secret seed 



candidates for q have t 
cryptographic value 



54. (new) 
computer program codd 
computer progrj 



have been rejected in sblecting the first user dependent RSA cryptographic value or if 2^^- 1 



een rejected in selecting the second user dependent RSA 



^ computer program product according to Claim 25, wherein the 
which generates a first initial value comprises: 

code which mixes a concatenation of Wq and IVq utilizing a 
publicly known mixing function; 

computer prograip code which concatenates Wp and IVp; and 

computer prograrh code which EXCLUSIVE-ORs the mixed concatenation of Wq and 
rVq and the concatenation Wp and IVp to provide the first initial value (XXp); and 

wherein the compmter program code which generates a second initial value comprises: 
computer program \code which EXCLUSIVE ORs p and IVp; 

computer program code which mixes the EXCLUSIVE OR of p and IVp utilizing the 
publicly known mixing fianption; 

computer program cbde which concatenates Wq and IVq; and 

computer program cMe which EXCLUSIVE-ORs the mixed EXCLUSIVE OR of p 
and IVp and the concatenation of Wq and IVq to provide the second initial value (XXq). 
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55. (new) A c©mputer program product according to Claim 27, further 
comprising computer progiam code which determines that the RSA cryptographic values are 
not authentic if p' and q' an values outside the user defined segments of the first and second 
intervals. 




56. (new) A cobiputer program product according to Claim 27, wherein the first 
of the two prime numbers is a smaller of the two prime numbers. 

57. (new) A cc mputer program product according to Claim 27 wherein the 
computer program code which recovers first and second candidate seed values Wp* and Wq' 
from the first and second c mdidate cryptographic values p' and q* and from the third publicly 
known seed value IV comprises: 

computer program oode which inverse maps the second candidate value q' to provide 
a first initial value Sq; 

computer program :ode which EXCLUSIVE ORs the first candidate cryptographic 
value p* and FVp; 

computer program code which mixes the EXCLUSIVE OR of the first candidate 
cryptographic value p' and FVp with the publicly known mixing function; 

computer program code which EXCLUSIVE ORs the mixed EXCLUSIVE OR of the 
first candidate cryptograph c value p' and IVp with FVq to provide a first known value (Nq) 
having a length (j); 

computer program code which determines if a value corresponding to the j least 
significant bits of Sq is less than the first known value Nq; 

computer program code which EXCLUSIVE ORs the n-j most significant bits of the 



mixed concatenation of the 



first candidate cryptographic value p' and IVp with the n-j most 



significant bits of Sq if the value corresponding to the j least significant bits of the first 



subsequent value is not less 
seed value; 



than the first known value Nq, to provide the second candidate 



computer program code which EXCLUSIVE ORs the n-j most significant bits of the 
mixed concatenation of the first candidate cryptographic value p' and IVp with 1 subtracted 
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\ 



from the value correspondir 
to the j least significant bits 




significant bits of Sp is less 

computer program cc 
mixed concatentation of the 



g to the n-j most significant bits of Sq if the value corresponding 
of the first subsequent value is less than the first known value Nq, 
to provide the second candic ate seed value; 

computer program code which inverse maps the first candidate value p' to provide a 
se99nd initial value Sp; 

computer program code which concatenates the second candidate seed value and IVq; 
computer program code which mixes the concatenation of the second candidate seed 
value and IVq with the publi :ly known mixing function; 

computer program code which EXCLUSIVE ORs the mixed concatenation of the 
second candidate seed value and IVq with IVp to provide a second known value Np having a 
length (j); 

computer program code which determines if a value corresponding to the j least 
t lan the second known value Np; 
de which EXCLUSIVE ORs the n-j most significant bits of the 
second candidate seed value and IVq with the n-j most significant 
bits of Sp if value corresponc ing to the j least significant bits of the second subsequent value 
is not less than the second kr own value Np, to provide the first candidate seed value; and 

computer program co ie which EXCLUSIVE ORs the n-j most significant bits of the 
mixed concatenation of the second candidate seed value and IVq with 1 subtracted from the 
value corresponding to the n-j most significant bits of Sp if the value corresponding to the j 
least significant bits of the second subsequent value is less than the second known value Np, 
to provide the first candidate seed value. 



